Companies House Data Glitch Exposes UK Business Directors' Private Details
Companies House Data Glitch Exposes UK Business Details

Companies House Data Glitch Exposes UK Business Directors' Private Details

A significant data glitch at Companies House has potentially exposed the private details of millions of business directors across the United Kingdom for a period of five months. The vulnerability, which is believed to have been active since late 2025, allowed users to view or edit company information by repeatedly pressing the back key on their web browser.

Security Risks and Expert Warnings

Cybersecurity experts have issued stark warnings about the implications of this glitch. The flaw could facilitate serious threats such as data theft, impersonation of CEOs, and various forms of corporate fraud. However, it is important to note that sensitive data like passwords and identity verification documents were not compromised in this incident.

Authorities have emphasised that while the vulnerability did not breach these core security measures, the exposure of other private details still poses a substantial risk to business integrity and personal privacy.

Immediate Actions for Businesses

In response to the discovery, businesses are strongly advised to take proactive steps to safeguard their information. The recommended actions include:

  • Checking the Companies House dashboard thoroughly for any unauthorised changes or discrepancies.
  • Taking screenshots of any irregularities found during the review process.
  • Contacting Companies House directly to report issues and seek further guidance on remediation.

These measures are crucial to mitigate potential damage and ensure that any fraudulent activities are promptly addressed.

Regulatory Response and Investigations

Companies House has reported the incident to key regulatory bodies, including the Information Commissioner's Office and the National Cyber Security Centre. The agency has pledged to take firm action against any individuals or entities found to have misused the vulnerability.

The investigation is ongoing, with officials working to assess the full scope of the exposure and implement enhanced security protocols to prevent future occurrences. This incident underscores the growing challenges in digital data management and the need for robust cybersecurity frameworks in public institutions.

Business owners and directors are urged to remain vigilant and stay informed as more details emerge from the ongoing probes into this data glitch.